ZyXEL ZyWALL 5 User Guide - Page 565
Table 177, Table 178, Table 176
View all ZyXEL ZyWALL 5 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 565 highlights
Chapter 32 Logs Screens Table 176 TCP Reset Logs (continued) LOG MESSAGE DESCRIPTION Firewall session time out, sent TCP RST The router sent a TCP reset packet when a dynamic firewall session timed out. The default timeout values are as follows: ICMP idle timeout: 3 minutes UDP idle timeout: 3 minutes TCP connection (three way handshaking) timeout: 270 seconds TCP FIN-wait timeout: 2 MSL (Maximum Segment Lifetime set in the TCP header). TCP idle (established) timeout (s): 150 minutes TCP reset timeout: 10 seconds Exceed MAX incomplete, sent TCP RST The router sent a TCP reset packet when the number of incomplete connections (TCP and UDP) exceeded the userconfigured threshold. (Incomplete count is for all TCP and UDP connections through the firewall.)Note: When the number of incomplete connections (TCP + UDP) > "Maximum Incomplete High", the router sends TCP RST packets for TCP connections and destroys TOS (firewall dynamic sessions) until incomplete connections < "Maximum Incomplete Low". Access block, sent TCP RST The router sends a TCP RST packet and generates this log if you turn on the firewall TCP reset mechanism (via CI command: "sys firewall tcprst"). Table 177 Packet Filter Logs LOG MESSAGE [ TCP | UDP | ICMP | IGMP | Generic ] packet filter matched (set: %d, rule: %d) DESCRIPTION Attempted access matched a configured filter rule (denoted by its set and rule number) and was blocked or forwarded according to the rule. For type and code details, see Table 192 on page 578. Table 178 ICMP Logs LOG MESSAGE DESCRIPTION Firewall default policy: ICMP , , ICMP access matched the default policy and was blocked or forwarded according to the user's setting. Firewall rule [NOT] match: ICMP , , , ICMP access matched (or didn't match) a firewall rule (denoted by its number) and was blocked or forwarded according to the rule. Triangle route packet forwarded: The firewall allowed a triangle route session to pass ICMP through. Packet without a NAT table entry The router blocked a packet that didn't have a blocked: ICMP corresponding NAT table entry. Unsupported/out-of-order ICMP: The firewall does not support this kind of ICMP packets ICMP or the ICMP packets are out of order. Router reply ICMP packet: ICMP The router sent an ICMP reply packet to the sender. ZyWALL 5/35/70 Series User's Guide 565